track.specialdatings.com/15GDSL
302 Found 312 B URL HTTP/1.1 track.specialdatings.com/15GDSL
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (312), with no line terminators
Hash 338119ab469f0e906053c573117e47c8
8e80eaca797dc004a3588199cb9dda2655904abf
0bbbfd096b52d00df1a003495fa82491f0208fa5c239189c2a19be2451f6a6f3
Analyzer Verdict Alert fortinet Phishing
GET /15GDSL HTTP/1.1
Host: track.specialdatings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.23.0
Date: Mon, 26 Sep 2022 06:56:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 312
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: 15GDSLo=20220925231664175511086; domain=.track.specialdatings.com; path=/;expires=Tue, 27 Sep 2022 06:56:14 GMT; httpOnly=true;
_pc_lc_id=15GDSL; domain=.track.specialdatings.com; path=/;expires=Tue, 27 Sep 2022 06:56:14 GMT; httpOnly=true;
peerclickcid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; domain=.track.specialdatings.com; path=/;expires=Tue, 27 Sep 2022 06:56:14 GMT; httpOnly=true;
_norg=1; domain=.track.specialdatings.com; path=/;expires=Tue, 27 Sep 2022 06:56:14 GMT; httpOnly=true;
Location: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Vary: Accept
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3979
Expires: Mon, 26 Sep 2022 08:02:33 GMT
Date: Mon, 26 Sep 2022 06:56:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 06:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5yXVjxYWqI18hK2i2qEFecV8IhPgjOr8dAe1YXHFUNGNgTtFo_PT7w==
Age: 2456
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wlECzI21tDOrFdu5lCEGhKkdCrli0ZEANX4W83qxqHXds4NVu8SbYQ==
age: 8459
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 06:56:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0462a6baaded01377b3df99e9874de54
375f0a0ad484d488f0b87902fb5fe4a0f6e14076
2c90c03d1cae5b4307e5d973aa2c8e6bd492007b64ca0fb7a720d2573656977e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 06:56:14 GMT
Server: ECS (dcb/7F13)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4vATW56JMT16UKtEHM4bi-UHQNjQP-Kjdm_Q8w4rFcul4ht7pv_eBw==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 06:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 06:17:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DFg_VdxK7LusFgZUMFUhLudyTsDmwkydrAq4x4GyVIkbyu9VlMtoMw==
Age: 2728
ocsp.digicert.com/
200 OK 471 B IP
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6453
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:15 GMT
Last-Modified: Mon, 26 Sep 2022 05:08:42 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
smarturl.it/~/tr/event/
200 OK 541 B IP
Hash 47ef142031d3adf2b3b3f4226ab60dd8
09417c8f4b583f012ac4bf9665f878f067295629
576bf4f8fd8fb84f612c5c20aab397ee5c213660cb50eb29b93a6ac8fd939c42
POST /~/tr/event/ HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1504
Origin: https://smarturl.it
Connection: keep-alive
Referer: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: LF_session_64d74686fed897f793d761036c88ff6a=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:15 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YLrBCm1NP+ovN/f013STvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GSZd9wa/UcseOGADVtAbItrQYC4=
ocsp.sectigo.com/
200 OK 471 B IP
Hash cce30c5bac67d4c647ca10891b60c706
70c199a4d8b267c004906417f0e65abb389fa779
49604e5eb3788615b23459bafcb70f53aa956166de5cab7b7c29d07c5e0caa09
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 08:29:08 GMT
Expires: Sun, 02 Oct 2022 08:29:07 GMT
Etag: "70c199a4d8b267c004906417f0e65abb389fa779"
Cache-Control: max-age=523371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a19433be9b4fd-OSL
www.golotter.com/play.aspx?lotteryid=60&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
301 Moved Permanently 273 B URL HTTP/1.1 www.golotter.com/play.aspx?lotteryid=60&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash fa7a457e0993e2906ef64c9936067ac3
bacf523c6fae7db819832e7754702cb2cb972c60
55c5e6b91bbff272165dd63aac50eaff3bfb42cd932306f17be63500ae999f8b
GET /play.aspx?lotteryid=60&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lnk.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: public, max-age=10
Content-Type: text/html; charset=utf-8
Location: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Server:
Set-Cookie: lng=1; path=/; secure
number_of_redirects=0; path=/; secure
urls_tracker=; path=/; secure
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 273
lnk.to/~/tr/event/
200 OK 34 kB IP
Hash f5edf44536e715d28ee6d497064bf892
a4743cea0d0ef1f8b7e88ff65ecb8d2396657015
914868bcde30c0426376dd029a066acdd53d32bbfc42e8d635890f2c4ca60a63
POST /~/tr/event/ HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1515
Origin: https://lnk.to
Connection: keep-alive
Referer: https://lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:15 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
200 OK 209 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 209 kB (209354 bytes)
Hash a6e74b9c539e1f3d97750e87f240ee46
6e969ad3874d97c67ec48c20b4e2683e366faacd
b560cb1e1909c57fe0b4329134515aa1751d116cb1b6e823d6ce1332e5192df2
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:23 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
www.googletagmanager.com/gtag/js?id=AW-10892566208
200 OK 61 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-10892566208
IP
File type ASCII text, with very long lines (1827)
Hash 5bdd96bdc3619ee13001f8d078ffb980
14e7f169b27db156d29f5470223764cefd814e68
1cb916b36fc45d848b052bf8403b675b7d64cfe7f8e6f3084927a8f4bf2f8c63
GET /gtag/js?id=AW-10892566208 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 06:56:16 GMT
expires: Mon, 26 Sep 2022 06:56:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 60869
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20220921070020
200 OK 14 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20220921070020
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ecb0dba194c66c5cacac89e898d98653
9228580fe875bbeb4611d7927fe57512728c0799
9822dd12c7b8a89b7e6dc296232069e3744a7f6fca3169ec596afeaba856709e
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fsigninsignup.css&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:23 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 14187
www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20220921070020
200 OK 9.9 kB URL HTTP/1.1 www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20220921070020
IP
File type ASCII text, with very long lines (46946), with CRLF line terminators
Hash cb525376fb4ff6a1cb3c46f0ec1ad6af
247462d1b7e126b8cf5e5b3fd2cfcadc48c2a1d8
404757b140f4174c3f3e71a78667806ff7d5c819c23401162783bd205e80bcc4
GET /css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fregistrationfull.css&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:23 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 9871
www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020
200 OK 27 kB URL HTTP/1.1 www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 05098494b90c96bebf5ea462b66b23c6
76f09a95a6c0642ce031460ac2ab035348175c6a
639c36820bdf34615e6f1d8e1d8987ac80202297f52c6308fe009fe7bed8384f
GET /css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/css; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:23 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 27197
www.golotter.com/Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20220921070020
200 OK 55 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20220921070020
IP
File type ASCII text, with very long lines (577), with CRLF line terminators
Hash a7937470069e0201276718bd1f2c5cda
fdd510b770190bc43062bee17e3fbc62e3b1fe32
ba0efefe851d516d90fd8f259e5958928a490645f1a7e2d10fb16317a3777d77
GET /Scripts/jslib.axd?d=%24s%24angular.min.js%2c%24s%24angular-animate.min.js%2c%24s%24angular-chosen.min.js&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:28 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:28 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 55086
www.golotter.com/Scripts/jslib.axd?v=20220921070020&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js
200 OK 48 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?v=20220921070020&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js
IP
File type ASCII text, with very long lines (12242), with CRLF, LF line terminators
Hash ee72670fde3320308c1e5fda9cc51bdf
5dd08bb58f0401d82a423a56a69b7d8e936b3948
7cd9fa1620e5ea73376cae588c47b4708e8be9ba8c06417161a85fe4ad905907
GET /Scripts/jslib.axd?v=20220921070020&d=%24s%24common.js%2c%24r%24smallspritebutton%2f%24s%24smallspritebutton.js%2c%24s1%24drawticker.js%2c%24s1%24megamenu.js%2c%24s1%24messagesalertmenuitemcontrol.js%2c%24s1%24signinsignupcontrol.js%2c%24s%24jquery.countdown.min.js%2c%24s%24jquery.json-2.3.min.js%2c%24s%24jquery.vticker.1.4.js%2c%24s%24scroller%2fjquery.li-scroller.1.0.js%2c%24s%24slick-carousel.min.js%2c%24s%24jquery.newsitemellipsis.js%2c%24s%24jquery.tools.min.js%2c%24s%24jquery.simpletip-1.3.1.js%2c%24s%24jquery.placeholder.js%2c%24s%24chosen.min.js HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:28 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:28 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 47623
www.golotter.com/Scripts/jslib.axd?v=20220921070020&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js
200 OK 81 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?v=20220921070020&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js
IP
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769), with CRLF line terminators
Hash eed894a984aed4cd54802ee925fb3e44
92122a3fc299d1d96b6b4b35ae9491a796c09dc8
f14de81033dade5188d005be60b7f5945c8823721bcad31393e31586553d9e60
GET /Scripts/jslib.axd?v=20220921070020&d=%24s%24jquery-1.7.1.min.js%2c%24s6%24namespace.js%2c%24s6%24class.js%2c%24s6%24core.js%2c%24s6%24core.math.js%2c%24s6%24core.validations.js%2c%24s6%24core.utils.url.js%2c%24s%24_app%2ftl.js%2c%24s4%24tlglobals.js%2c%24s%24_app%2fservices%2fbaseservice.js%2c%24s%24_app%2fservices%2ffontstylecalculatorservice.js%2c%24s%24_app%2fservices%2fuserloginstatusservice.js%2c%24s%24_app%2fservices%2ffeaturetoggleservice.js%2c%24s4%24siteelements.js%2c%24s%24jstorage%2fjstorage.js%2c%24s3%24formsnormalizer.js%2c%24s%24big.min.js%2c%24s%24mailcheck.min.js%2c%24s%24localforage.js%2c%24s3%24singleframeandpopupcontroller.js HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:28 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:28 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.golotter.com//images/Common/placeholder.svg?v=202209211
200 OK 306 B URL HTTP/1.1 www.golotter.com//images/Common/placeholder.svg?v=202209211
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (306), with no line terminators
Hash d7e3848208b8a53d5caa272c1e2116b7
5740aa3f2d1dd318c1a4c12ae4d1bfcc97e639b7
56ce9a9f71a8465359a676d95189390683de779bdc085f4fa9d48ec0651d9a5f
GET //images/Common/placeholder.svg?v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "b9447a982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
Content-Length: 306
www.golotter.com//objects/dm.tlo?id=3183&v=202209211
200 OK 3.4 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3183&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash cbf3811b745eb6882cd896cf11a2c987
01a1286a806c27adfde2ba267a680c98ca882d7b
186400c36ed02088c17f054ec8105aee46c7c08124f3faf47141273b3812cbd1
GET //objects/dm.tlo?id=3183&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
www.golotter.com//objects/dm.tlo?id=3171&v=202209211
200 OK 8.6 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3171&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash fa95eba9b30bab20e8dac553221a8d13
98660b3aa512478f2eabee14b777ed8228fcbd5d
1dfeadb651c141831d8e5e5dcedc151f1c3c58e7b117ee4a81cfa036d976d377
GET //objects/dm.tlo?id=3171&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
www.golotter.com//objects/dm.tlo?id=3193&v=202209211
200 OK 2.2 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3193&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash b295c31de74585903455a324bf6ed8a6
ab3c152dbe9cea12bedb00ae23faf1b1ef271793
85a3b653855850d2a2b380fd2da9825ac86ec1395d976e9f96bf4d8fadcc5e18
GET //objects/dm.tlo?id=3193&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
www.golotter.com//objects/dm.tlo?id=3172&v=202209211
200 OK 5.1 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3172&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash 68c6ba521bf2986b3950fe3726a1992b
715fda1967bdbd5797f70b11e34bee1a881cd437
a5906964c9983f683c6c6c446e5008510535fbf713245a779a7241af89681211
GET //objects/dm.tlo?id=3172&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
www.golotter.com//objects/dm.tlo?id=3189&v=202209211
200 OK 19 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3189&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit/color RGB, non-interlaced\012- data
Hash bbe3111d24ffc3b45592989b773119fd
ab206bcfb113c02d930d8e853a8caf873b33b550
6b271551ea87babbae96b4b1ebce30393c9b6e1c54fb428342efc33d9940a740
GET //objects/dm.tlo?id=3189&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
www.golotter.com//objects/dm.tlo?id=3177&v=202209211
200 OK 8.9 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3177&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash a1c7fa5b2add0624e7031758594febb2
d0f97ef1b1b4f91b05ef94b5ea8f7e1f0b9857b3
f272cd6fc8ceca109ae395d3d7d011824864c1fa1aeaefb3653357701cb978fa
GET //objects/dm.tlo?id=3177&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
www.golotter.com//objects/dm.tlo?id=3173&v=202209211
200 OK 6.6 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3173&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash 5245146952b57d495faf590b250753e6
bd30d8223d2b7b3a36fb8ef87640ca9d836b0432
ed6f9e693e5c08e2ee81eb2bec8fc715db0d4f43fc724a3effe7e5986f5bc8c1
GET //objects/dm.tlo?id=3173&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20736
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 06:56:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20736
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 06:56:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20736
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 06:56:16 GMT
Connection: keep-alive
smarturl.it/~/tr/pageview/
200 OK 573 B URL HTTP/2 smarturl.it/~/tr/pageview/
IP
Hash 573d3bbf605552c0edd11c35b6592986
0af3cb0e1be35147f67a13df6d28b0a33d617d27
bba23c952a5718fa263b92e6247b3e8dfa25b74dad1c5bd864d6af7a4bda566d
POST /~/tr/pageview/ HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1334
Origin: https://smarturl.it
Connection: keep-alive
Referer: https://smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: LF_session_64d74686fed897f793d761036c88ff6a=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:15 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20736
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 06:56:16 GMT
Connection: keep-alive
www.golotter.com//objects/dm.tlo?id=3168&v=202209211
200 OK 5.0 kB URL HTTP/1.1 www.golotter.com//objects/dm.tlo?id=3168&v=202209211
IP
File type PNG image data, 440 x 448, 8-bit colormap, non-interlaced\012- data
Hash 69d28c91fad7a9b2a8a735eeb94e8bc4
abcba99c96352f42eb3b7f960c6088d109247ca4
cd95dc433b5df484a23cd0a2791bdb39ddee5ab2b75a135793f2e94db0251a6b
GET //objects/dm.tlo?id=3168&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:16 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:16 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda074419-8119-43b4-9e9f-bdccf9f5d3cf.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda074419-8119-43b4-9e9f-bdccf9f5d3cf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5f3086174be3cb03a9727dab1f2c57a2
fec58d5dfadad6f5913dc2303bfac89e56d5bc53
c74d48686365b9cc74e5296dc83a23a9e3580b5f2b7ef6b4b9ddc19bccf0fab8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda074419-8119-43b4-9e9f-bdccf9f5d3cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11824
x-amzn-requestid: 6aad0f0e-feb3-4ffb-93bd-104c94d29944
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGoNIAMFp3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-3c89372f6221548e79849d68;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1SV6hQb_ploB_ehNYpKMcjBODl9y1ayD_W4W0pkqR4VQVxFkVxy0-w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:19:32 GMT
age: 31004
etag: "fec58d5dfadad6f5913dc2303bfac89e56d5bc53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 31799
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGRBCfCtZkeYhbTpaE18IpIgUtOHyttE-0hRk8fWVB9sJS2rSbP22g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
age: 31844
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 988b0c94c41a21c736b330c3256d0a3c
c16a6f018bd80c6390b7a07f4e6698db7bfd28b0
3034912f83810b3999ffa90f5eeaf0f45773c592cfd3cf2bfb794ea1b150158c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 2aceb075-d4bc-45b8-8330-5e719c565f77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKEEdPoAMFsNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca40-3f120e0774b1d58a08898c39;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: feNiTFDhUx-BfoiybnKj83hCq6CCoiMeOSEHyFs8b7cLIgKvnO1Cdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
age: 31844
etag: "c16a6f018bd80c6390b7a07f4e6698db7bfd28b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 33537
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce85614e-743a-4f62-8caf-9fdeb86a1c45.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce85614e-743a-4f62-8caf-9fdeb86a1c45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53e1460eb42e8f71ed179c3be0709333
43c5b52cd3fb56660d826916eaafff0901340787
ec6de3d11b3c8d9743d8a91864a0c04a16259c206d87691591c2aa9b10edcd3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce85614e-743a-4f62-8caf-9fdeb86a1c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4021
x-amzn-requestid: b265dc30-377d-42a7-93ce-9e6932febcbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJ5FMxoAMF4GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3f-58fbb5914e5ec38f6260893c;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1VPelfMeF-nwhiMI2NSq6AGg6hTGIXJDR3RnnEVWLuMVrK9EJN8pFA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:11:53 GMT
age: 31463
etag: "43c5b52cd3fb56660d826916eaafff0901340787"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=20220920
200 OK 2.9 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=20220920
IP
File type GIF image data, version 89a, 30 x 30\012- data
Hash 878de0a7a503cc9e144239193ff79a1b
8362d1d56fc2ec1ca4fd71a39472990721872897
399c04c19924a81bac7384f3a45287556814761560970a514d36fe4271778203
GET /App_Themes/Default/images/General/loader_red.gif?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 21 Sep 2022 06:23:22 GMT
Accept-Ranges: bytes
ETag: "669f19a682cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
Content-Length: 2886
www.golotter.com/Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2cpromotion%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20220921070020
200 OK 469 kB URL HTTP/1.1 www.golotter.com/Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2cpromotion%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20220921070020
IP
File type ASCII text, with very long lines (5813), with CRLF, LF line terminators
Size 469 kB (469214 bytes)
Hash fc13ea5514f575b8b95899e1fbc2138e
70dd547c0b1bd5a0a6f78c6ae04d002db01294db
1e44f8c0679af3443e4f259321f2d44e257769aeed72f7d522643cb85bd98db3
GET /Scripts/jslib.axd?ngm=auth%2cformsshared%2cfullregistration%2cuserdetails%2cpaymentmethods%2cshared%2cxsscontent%2cliveperson%2cgamblingaml%2cgamblinglicense%2cgamblingprotectionoffunds%2cgamblingtimelimit%2cregulation%2cregulationageverification%2cregulationlocation%2cregulationuser%2ctermsandconditions%2cfrozenuser%2csubsitepolicypermissions%2cconsent%2cuser%2clocationidentification%2cscratchcardshared%2cfootercontent%2cheader%2cautologout%2cfinance%2cpromotion%2csecurity%2cdesktopheader%2ccontentdirectives%2cticketline%2cplayshared%2cplayrequest%2csyndication%2cbundleitemcards%2cupsalecampaign%2cpushnotification%2capp.js&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:24 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:24 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:15 GMT
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash 0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:03:15 GMT
expires: Tue, 19 Sep 2023 21:03:15 GMT
cache-control: public, max-age=31536000
age: 553981
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265
GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:03:13 GMT
expires: Tue, 19 Sep 2023 21:03:13 GMT
cache-control: public, max-age=31536000
age: 553983
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tl-log.com/api/v1/logging/configuration
200 OK 0 B URL HTTP/2 tl-log.com/api/v1/logging/configuration
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/logging/configuration HTTP/1.1
Host: tl-log.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=16070400
date: Mon, 26 Sep 2022 06:56:16 GMT
content-length: 0
set-cookie: visid_incap_1921636=J9HFzWU2S1KpPzmP7VL19xBNMWMAAAAAQUIPAAAAAACYfQyh3GbL+tGOttjancgB; expires=Mon, 25 Sep 2023 22:38:23 GMT; HttpOnly; path=/; Domain=.tl-log.com; Secure; SameSite=None
incap_ses_765_1921636=VHbwPSpFkgD4aMuuSNSdChBNMWMAAAAAfDRD0IUltMNtNRKPD0FATA==; path=/; Domain=.tl-log.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 6-53076264-53076268 NNNN CT(2 1 0) RT(1664175376680 36) q(0 0 0 0) r(0 0) U6
X-Firefox-Spdy: h2
lnk.to/~/tr/pageview/
200 OK 75 kB IP
Hash 049b13bd75e9e9996f424ba6f1fbc88c
d7efe1228ef2729cb485ba0ae4d5f06ea4c80e78
26bc55130abff4371a457ef24a71ec5fcfc06a0f61f9d94211a6d21cc933511e
POST /~/tr/pageview/ HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1354
Origin: https://lnk.to
Connection: keep-alive
Referer: https://lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:15 GMT
content-type: application/json; charset=UTF-8
server: nginx
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=30150&v=202209211
200 OK 2.3 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=30150&v=202209211
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash a5e8beeec21ac7a49b1fdc90593ac6ad
936f339ead655ff8828a9e6a1f618ab9af508e85
1e00ef7af010b58f4be26f1413015d332c9868ae9968ea2f4f0297d940ec9d48
GET /objects/dm.tlo?id=30150&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.1.1862480516.1664175376
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:17 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:17 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/conversion_async.js
200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP
File type ASCII text, with very long lines (1654)
Hash 890f716858b5f72587e47c5eca121cb5
91871a0acd9a0ab644d51036bb5ca0c3bdc5e687
7a3629e375468328b3fb25e1a6cc5749604f09099e8d2109f366e7e0226aee4a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 26 Sep 2022 06:56:17 GMT
expires: Mon, 26 Sep 2022 06:56:17 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3080337328058561381
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.golotter.com/clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,Promotion,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20220921070020
200 OK 100 kB URL HTTP/1.1 www.golotter.com/clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,Promotion,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20220921070020
IP
File type exported SGML document, ASCII text, with very long lines (408), with CRLF line terminators
Hash e262f99d932078c6679f7bb78c181c36
b1cd6a5dd148f34b8e7e2c63d12a000991b4aed8
fab2f342814ae84fb5fa6ad53eaa7b74546f03a9919f3097cf94dd6c59dc88a5
GET /clientapps/templates.html?ngm=Auth,Shared,FullRegistration,UserDetails,PaymentMethods,Consent,RegulationAgeVerification,Security,FormsShared,GamblingAML,GamblingLicense,GamblingProtectionOfFunds,GamblingTimeLimit,Regulation,RegulationLocation,RegulationUser,TermsAndConditions,FrozenUser,SubSitePolicyPermissions,User,LocationIdentification,ScratchCardShared,FooterContent,Header,AutoLogout,Finance,Promotion,DesktopHeader,TicketLine,PlayShared,PlayRequest,Syndication,BundleItemCards,UpsaleCampaign&v=20220921070020 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.1.1862480516.1664175376
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Expires: Thu, 21 Sep 2023 06:23:24 GMT
Last-Modified: Wed, 21 Sep 2022 06:23:24 GMT
Vary: Accept-Encoding,Accept-Encoding
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/unip/1298910/tfa.js
200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1298910/tfa.js
IP
File type ASCII text, with very long lines (58497)
Hash af9f4a16c7223e86ecedf26850467716
a8427405d555bc97117ce18b0f29cc6e2c069964
e39b0b1a8a2409d4e6f11479c1c122fcf4b2fa39b2ceffeedb05d1f469cddfc0
GET /libtrc/unip/1298910/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: L+vD2+V29UUcOU9TU6SyV+wOLgtR5h6IBpeUqkYkDFhWkEx+LYcDSkHL4R61+RHP0isb3KnRZTo=
x-amz-request-id: C4C33CD8CKNKRT60
x-amz-replication-status: COMPLETED
last-modified: Sun, 25 Sep 2022 11:19:53 GMT
etag: "d49882d81c95e2423330d7b2f7ad00be"
x-amz-version-id: tjydpgKJ8EgWBiJCnWrjdBlS508hyGt7
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 06:56:17 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664175377.291157,VS0,VE102
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 82
content-length: 17950
X-Firefox-Spdy: h2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: na4enFeJG6FvtnGS2KOnpeovQw5Ae_b8HtGa-WevdW1Dp5PoYRthFQ==
age: 1633150
X-Firefox-Spdy: h2
www.golotter.com/__ajax/__play.asmx/getplaymodel
200 OK 83 kB URL HTTP/1.1 www.golotter.com/__ajax/__play.asmx/getplaymodel
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65509), with no line terminators
Hash a8db08ecdaf24aa6620679b2b529e6cb
5660eaac57a2f1fc0264d70e7b59001ffcc5a398
7443489bb7ade20577d44ce5635fbe6e58fb23d1dc973e16fd9c69f2fd27cbce
POST /__ajax/__play.asmx/getplaymodel HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 63
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.1.1862480516.1664175376
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
Set-Cookie: PlayRequestLandingPage=1; expires=Wed, 26-Oct-2022 06:56:17 GMT; path=/; secure
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:16 GMT
Content-Length: 83371
script.hotjar.com/modules.01a02f6e8b126e8c8358.js
200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.01a02f6e8b126e8c8358.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 88b47d3464ed75957aaec1d6b297a6e8
760b0f75cc7a47bfd293e211fc950218675cdf41
84812290eadd6391e8c8083c3016bbb7de5a43346f873080b74052eda996392b
GET /modules.01a02f6e8b126e8c8358.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65760
date: Fri, 23 Sep 2022 10:32:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "88b47d3464ed75957aaec1d6b297a6e8"
last-modified: Fri, 23 Sep 2022 10:32:03 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 461nURlOXUhchQA7eipN80_TAgmrWi7X4EtqN7qQQNaHMfQaKgD12w==
age: 246251
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1664175375639&cv=9&fst=1664175375639&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1664175375639&cv=9&fst=1664175375639&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2702), with no line terminators
Hash ca9b6fbd53654d4dd5d7c761246e4d71
b43cde3cef077f7fa70c6e533e3f6aec34575f35
5a4593832e907a99867b51dac9b8fef36ef369b22fe4ffd6e81e550d2f11cbf0
GET /pagead/viewthroughconversion/10892566208/?random=1664175375639&cv=9&fst=1664175375639&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 06:56:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1166
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 07:11:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1664175375636&cv=9&fst=1664175375636&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10892566208/?random=1664175375636&cv=9&fst=1664175375636&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2702), with no line terminators
Hash 26325a88ec4b10803051ba398f88647c
43d9f7e792f7cc5426e2d18171cc4d96f69a7d0b
c5d794bda5c93754217c51d0bb648a8f598b6d9eb93bbaa34e013530e2300b26
GET /pagead/viewthroughconversion/10892566208/?random=1664175375636&cv=9&fst=1664175375636&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&auid=17774948.1664175375&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 06:56:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1167
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 26-Sep-2022 07:11:17 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.yimg.com/wi/config/10131727.json
200 OK 22 B URL HTTP/2 s.yimg.com/wi/config/10131727.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 14293ad9ad0ffaf9f7a3acf1b0793b66
718dea6b65b9516e5e33fac53451056397deb255
73a1b438b0221511fb3dde18e019f5ab045811b2248d25d424e40980c683a9dc
GET /wi/config/10131727.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: 5PCRR0MMAFQ83A5G
x-amz-id-2: mbg9m/piFYgozeUbo5QHGUSH7eIe8yI5oMrpZllroXIcPtM4NtivTZzmrLX6jsYWqyVb6ALrzqM=
content-type: application/json
date: Mon, 26 Sep 2022 06:56:16 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-encoding: gzip
content-length: 22
age: 1
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/10892566208/?random=1664175375636&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=1187150547&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10892566208/?random=1664175375636&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=1187150547&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1664175375636&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=1187150547&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 06:56:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10892566208/?random=1664175375639&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=3659539643&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10892566208/?random=1664175375639&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=3659539643&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10892566208/?random=1664175375639&cv=9&fst=1664172000000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=3&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa9l0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ref=https%3A%2F%2Flnk.to%2F&tiba=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&async=1&fmt=3&is_vtc=1&random=3659539643&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 26 Sep 2022 06:56:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash fddbb5b6587ac202c0ac976031147fd8
8f1369b178af6277ffc47017d1edca30593eeeaf
516ed998ae53c6a570fe6e30832285e77588b92d13936c196260f3cf3abde8c6
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 15:43:31 GMT
Expires: Sat, 01 Oct 2022 15:43:30 GMT
Etag: "8f1369b178af6277ffc47017d1edca30593eeeaf"
Cache-Control: max-age=463032,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a194c5eeab4fd-OSL
lptag.liveperson.net/tag/tag.js?site=50625536
200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=50625536
IP
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=50625536 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:17 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oe9l0&_p=31186038&cid=1862480516.1664175376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664175375&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oe9l0&_p=31186038&cid=1862480516.1664175376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664175375&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-PG6WJ6GTXC>m=2oe9l0&_p=31186038&cid=1862480516.1664175376&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664175375&sct=1&seg=0&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&dr=https%3A%2F%2Flnk.to%2F&dt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.golotter.com
date: Mon, 26 Sep 2022 06:56:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_ca43a4c1d28e4fb09cf953b9348f73d5_https.js
200 OK 4.1 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_ca43a4c1d28e4fb09cf953b9348f73d5_https.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (11224)
Hash a71aed8dce4cc4d80cf85dbbfff41f4e
9529840955a8500520309217cb84151f77867f3b
f8d67cfcef955b85cc7f81c4bc9ac9cc65033214733b9e7d9102990a380e84de
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_ca43a4c1d28e4fb09cf953b9348f73d5_https.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: klxzhUBt9jo+9Izt1PbGwYzArek0XOED15tM33LAKsRRezoDK8uzGad2VV1qEIB3DNsBUGEz/N8=
x-amz-request-id: C8N1BXS4762BF2DY
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Jul 2022 08:25:52 GMT
etag: "a71aed8dce4cc4d80cf85dbbfff41f4e"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: BwKfa0TI3FzmM2YnueQ1iDy80qTWDXKn
accept-ranges: bytes
content-type: application/x-javascript
content-length: 4146
vary: Accept-Encoding
cache-control: max-age=8881
date: Mon, 26 Sep 2022 06:56:17 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.thelotter-affiliates.com/scripts/trackjs.js
200 OK 7.3 kB URL HTTP/1.1 www.thelotter-affiliates.com/scripts/trackjs.js
IP
File type C source, ASCII text, with very long lines (1900)
Hash e145770558ea1ad75be43910e5c6d050
5029211c0791a81b4710f963011808b4bb22f338
fb4d8ec47a0ff7d2279c7615dc77054423700060dd9aa301549171154fb3dd75
GET /scripts/trackjs.js HTTP/1.1
Host: www.thelotter-affiliates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 20 Feb 2019 12:46:38 GMT
Accept-Ranges: bytes
ETag: "08bd7511ac9d41:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Server-Name: Shield2
Date: Mon, 26 Sep 2022 06:56:17 GMT
Content-Length: 7279
amplify.outbrain.com/cp/obtp.js
200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Mon, 26 Sep 2022 07:16:18 GMT
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 3249
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:18 GMT
Last-Modified: Mon, 26 Sep 2022 05:42:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 06:41:09 GMT
expires: Mon, 26 Sep 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 909
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 11 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=2367BAE53E7C61C025F4A8CE3F2B60F3; domain=.bing.com; expires=Sat, 21-Oct-2023 06:56:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5E2BFF144B7A456DB4F0CAEE2A2A1D7F Ref B: OSL30EDGE0406 Ref C: 2022-09-26T06:56:18Z
date: Mon, 26 Sep 2022 06:56:18 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: d/4qg8cxTphFpZ5CQ6RWd7MMQJcf0OOdYE4UIJfbchTJQJNNKK/fCYAL5p0AlrtMNVn1/xA3Z99ahzGv0Vkbzg==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 06:56:18 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:18 GMT
Last-Modified: Mon, 26 Sep 2022 05:42:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.thelotter-affiliates.com/scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&anchor=&isInIframe=false&cookies=
200 OK 201 B URL HTTP/1.1 www.thelotter-affiliates.com/scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&anchor=&isInIframe=false&cookies=
IP
Hash 408686bd268cde9dc4896b4d54b1f368
9174a79ac5cc1495bed0173c4dd161039c9dca57
bd86d97458585fa60a612e094ff63833526c4894aca18e59e943f2336f1f0d4d
GET /scripts/track.php?accountId=default1&url=S_www.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F&referrer=S_lnk.to%2F&getParams=%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&anchor=&isInIframe=false&cookies= HTTP/1.1
Host: www.thelotter-affiliates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, max-age=0
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
P3P: CP="NOI NID ADMa DEVa PSAa OUR BUS ONL UNI COM STA OTC"
Set-Cookie: PAPAffiliateId=11395; expires=Mon, 26-Sep-2022 07:01:18 GMT; Max-Age=300; path=/; domain=.thelotter-affiliates.com
PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; expires=Tue, 26-Sep-2023 06:56:18 GMT; Max-Age=31536000; path=/; domain=.thelotter-affiliates.com
X-Powered-By: PHP/5.5.38, ASP.NET
Server-Name: Shield2
Date: Mon, 26 Sep 2022 06:56:17 GMT
Content-Length: 201
sp.analytics.yahoo.com/sp.pl?a=10000&d=Mon%2C%2026%20Sep%202022%2006%3A56%3A16%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
200 OK 43 B URL HTTP/2 sp.analytics.yahoo.com/sp.pl?a=10000&d=Mon%2C%2026%20Sep%202022%2006%3A56%3A16%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm
IP
ASN #34010 Yahoo! UK Services Limited
File type GIF image data, version 89a, 1 x 1\012- data
Hash bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39
GET /sp.pl?a=10000&d=Mon%2C%2026%20Sep%202022%2006%3A56%3A16%20GMT&n=0&b=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&.yp=10131727&f=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&e=https%3A%2F%2Flnk.to%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:18 GMT
expires: Mon, 26 Sep 2022 06:56:18 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBBJNMWMCEJ2C8A0KCxZYg-x52caiJJAFEgEBAQGeMmM7YwAAAAAA_eMAAA&S=AQAAAqyWP8TtbzynuRJPklKj0zc; Expires=Tue, 26 Sep 2023 12:56:18 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25071092&Ver=2&mid=d449ae00-d3a5-4fda-932a-a0f620c57296&sid=5122cff03d6811ed8893cf788d3c2b0f&vid=5122d8e03d6811ed87b9772435b3a691&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F<=2176&evt=pageLoad&sv=1&rn=259031
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25071092&Ver=2&mid=d449ae00-d3a5-4fda-932a-a0f620c57296&sid=5122cff03d6811ed8893cf788d3c2b0f&vid=5122d8e03d6811ed87b9772435b3a691&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F<=2176&evt=pageLoad&sv=1&rn=259031
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25071092&Ver=2&mid=d449ae00-d3a5-4fda-932a-a0f620c57296&sid=5122cff03d6811ed8893cf788d3c2b0f&vid=5122d8e03d6811ed87b9772435b3a691&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&p=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F<=2176&evt=pageLoad&sv=1&rn=259031 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=321AB9AC5AF96B762DABAB875BAE6A3D; domain=.bing.com; expires=Sat, 21-Oct-2023 06:56:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C6C8493BB6864713A668F4CDF6D0289A Ref B: OSL30EDGE0406 Ref C: 2022-09-26T06:56:18Z
date: Mon, 26 Sep 2022 06:56:18 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-6907977-25&cid=1862480516.1664175376&jid=552439458&gjid=2100459755&_gid=1247255687.1664175377&_u=IADAAEAAAAAAAC~&z=218446662
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-6907977-25&cid=1862480516.1664175376&jid=552439458&gjid=2100459755&_gid=1247255687.1664175377&_u=IADAAEAAAAAAAC~&z=218446662
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-6907977-25&cid=1862480516.1664175376&jid=552439458&gjid=2100459755&_gid=1247255687.1664175377&_u=IADAAEAAAAAAAC~&z=218446662 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.golotter.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/25071092.js
200 OK 666 B URL HTTP/2 bat.bing.com/p/action/25071092.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 1375c837b038fa741719a2e54caf3463
b70494ffe80ced11a58075108c0d4abb3865f73d
25d4baa9edf0673904e9b7baf64899378204e046abfe13b800084d62a36d5b0d
GET /p/action/25071092.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=3DADAFE218C864A73688BDC9199F658B; domain=.bing.com; expires=Sat, 21-Oct-2023 06:56:18 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A58D244EC0A649EEABD88641CBA4B7F9 Ref B: OSL30EDGE0406 Ref C: 2022-09-26T06:56:18Z
date: Mon, 26 Sep 2022 06:56:18 GMT
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 183bb1d95d5f9d2f92660bb80c38143c
76d3028cab692ee9bba86ff3c41d6e65c19ae9bb
22b15b9cacbe432e9199a82ea9b649f63d6550b6bccca3e711ec18d1ec061642
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3373
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:18 GMT
Last-Modified: Mon, 26 Sep 2022 06:00:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
200 OK 471 B IP
Hash 183bb1d95d5f9d2f92660bb80c38143c
76d3028cab692ee9bba86ff3c41d6e65c19ae9bb
22b15b9cacbe432e9199a82ea9b649f63d6550b6bccca3e711ec18d1ec061642
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 06:56:18 GMT
Last-Modified: Mon, 26 Sep 2022 05:50:08 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
tr.outbrain.com/unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&optOut=false&bust=08591735162735916&referrer=https%3A%2F%2Flnk.to%2F
200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&optOut=false&bust=08591735162735916&referrer=https%3A%2F%2Flnk.to%2F
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&optOut=false&bust=08591735162735916&referrer=https%3A%2F%2Flnk.to%2F HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: d117f1eb8a83e91e16bed565037224ea
content-encoding: gzip
tr.outbrain.com/cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90
200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90
IP
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=001fb03cf3fe3fdff9b757afa645f85cd8,007e46ed0106616ee0ee926fbc10cbc7ee,0061e3ebfce8d46e7e32807000c43eb5f7,0030476f23402842607ee4df055f1cd5de,0020a94d4db070222beff9251752190e90 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: e678472e3c84b5706d0da11d52e52fb4
content-encoding: gzip
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&RedC=c.clarity.ms&MXFR=10D3BB5061FF601018EFA97B65FF6E41
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=10D3BB5061FF601018EFA97B65FF6E41; domain=.clarity.ms; expires=Sat, 21-Oct-2023 06:56:18 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 26 Sep 2022 06:56:18 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&RedC=c.clarity.ms&MXFR=10D3BB5061FF601018EFA97B65FF6E41
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&RedC=c.clarity.ms&MXFR=10D3BB5061FF601018EFA97B65FF6E41
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&RedC=c.clarity.ms&MXFR=10D3BB5061FF601018EFA97B65FF6E41 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.golotter.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&MUID=117AAF8A1CFC60612E4BBDA11DAB61C2
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=117AAF8A1CFC60612E4BBDA11DAB61C2; domain=c.bing.com; expires=Sat, 21-Oct-2023 06:56:18 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1EE79CAA6B7041A2881BE64B98B40BD1 Ref B: OSL30EDGE0406 Ref C: 2022-09-26T06:56:18Z
date: Mon, 26 Sep 2022 06:56:18 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&MUID=117AAF8A1CFC60612E4BBDA11DAB61C2
200 OK 86 kB URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&MUID=117AAF8A1CFC60612E4BBDA11DAB61C2
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type gzip compressed data, from Unix\012- data
Hash 3d83b7e56106a8c52d090d0e009a9ca1
99e0f4d1538a8b457ef1acd664fe825faf8f652e
120406d437802d4c2188c46352f8ffec2a087407ad03290fa9b8c4313fe45098
GET /c.gif?CtsSyncId=E41ECB56B1974731A199EFC7A957AAC8&MUID=117AAF8A1CFC60612E4BBDA11DAB61C2 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.golotter.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 26-Sep-2022 07:06:19 GMT; path=/; SameSite=None; Secure;
date: Mon, 26 Sep 2022 06:56:18 GMT
content-length: 42
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1664175377318&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664175377318.1054101310&it=1664175376536&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1664175377318&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664175377318.1054101310&it=1664175376536&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=817677268405846&ev=PageView&dl=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&rl=https%3A%2F%2Flnk.to%2F&if=false&ts=1664175377318&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664175377318.1054101310&it=1664175376536&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 06:56:19 GMT
X-Firefox-Spdy: h2
www.golotter.com/__ajax/__upsalecampaigns.asmx/getexitintentoffer
200 OK 134 B URL HTTP/1.1 www.golotter.com/__ajax/__upsalecampaigns.asmx/getexitintentoffer
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 770c1a11bfbebfbed8d8b85119c2fd0a
f9aae5604fc42e8bea241c526b8726a21c08973d
0d1c6b08da4a7a15f380b8a2e1052829cd2726fbcb4e09193966f1dfe7bed251
POST /__ajax/__upsalecampaigns.asmx/getexitintentoffer HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 134
www.golotter.com/App_Themes/Default/images/Footer/desktop-background-footer.png?v=20220920
200 OK 29 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/Footer/desktop-background-footer.png?v=20220920
IP
File type PNG image data, 1249 x 787, 4-bit colormap, non-interlaced\012- data
Hash 1026eb88f4f552044be5193754671a89
2f2c7a3526f9c73544c69b61fc0dbd4d4d8e3428
3aa8ebe05cb7fa90a050bffae4bb5471f413ca68b0d330bc9e89223bf4f55dfa
GET /App_Themes/Default/images/Footer/desktop-background-footer.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:22 GMT
Accept-Ranges: bytes
ETag: "adf14a682cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 29012
trc.taboola.com/1298910/trc/3/json?tim=1664175375713&data=%7B%22id%22%3A366%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664175375705%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664175375712%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 2.2 kB URL HTTP/2 trc.taboola.com/1298910/trc/3/json?tim=1664175375713&data=%7B%22id%22%3A366%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664175375705%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664175375712%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
File type HTML document, Unicode text, UTF-8 text, with very long lines (2557), with CRLF line terminators
Hash 26f7481e1b9f9538fd08647fe88772e1
39ae08eb652e0e70fc24f8c8981e7ea0c7194207
422b00a70c41b959bf65b8620d21ac33a37576fac08205f4f6ca9b032cfbca94
GET /1298910/trc/3/json?tim=1664175375713&data=%7B%22id%22%3A366%2C%22ii%22%3A%22%2Flottery-tickets%2Fusa-megamillions%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664175375705%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.thelotter.com%2Flottery-tickets%2Fusa-megamillions%2F%22%2C%22e%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dthelotterglobalnetwork-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664175375712%2C%22ref%22%3A%22https%3A%2F%2Flnk.to%2F%22%2C%22item-url%22%3A%22https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2C%22tos%22%3A4%2C%22ssd%22%3A1%2C%22scd%22%3A20%2C%22ler%22%3A%22other%22%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 06:56:17 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664175377.463158,VS0,VE91
vary: Accept-Encoding
x-vcl-time-ms: 91
X-Firefox-Spdy: h2
www.golotter.com/__ajax/__validations.asmx/getvalidationtranslations
200 OK 3.9 kB URL HTTP/1.1 www.golotter.com/__ajax/__validations.asmx/getvalidationtranslations
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3924), with no line terminators
Hash 3f559905115a45a6460b4c3fa7bf3b14
e0386e9cb33a3b4365351f0c5a1b588fe88871af
2bf1cfa7cc309ad80b1acee1bfaf09b4d16398f73be39eec129490a5a90cd21e
POST /__ajax/__validations.asmx/getvalidationtranslations HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 3929
www.golotter.com/api/subsite/is-betting-on
200 OK 125 B URL HTTP/1.1 www.golotter.com/api/subsite/is-betting-on
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ef2e8d9507fec068867fdf35ff8f2e97
6b5e1229269c642322750f63f5b78d53094c3a03
a09f52ca257c838908f314f38e983ef3421cbcc7c35c4a3e36e358622d3bd759
GET /api/subsite/is-betting-on HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 125
www.golotter.com/api/policypermissions
200 OK 5.7 kB URL HTTP/1.1 www.golotter.com/api/policypermissions
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5712), with no line terminators
Hash f31ff4bb608c98f649ded243df805620
3b7b9fa96b7e9d60e9030b0321e148bb0ead43fb
a84c9b610ba585a0c9e2fa294fe2621fca165af7b079bf87fbee79601dc380c4
GET /api/policypermissions HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 5720
www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202209211
200 OK 2.9 kB URL HTTP/1.1 www.golotter.com/App_Themes/Default/images/General/loader_red.gif?v=202209211
IP
File type GIF image data, version 89a, 30 x 30\012- data
Hash 878de0a7a503cc9e144239193ff79a1b
8362d1d56fc2ec1ca4fd71a39472990721872897
399c04c19924a81bac7384f3a45287556814761560970a514d36fe4271778203
GET /App_Themes/Default/images/General/loader_red.gif?v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Last-Modified: Wed, 21 Sep 2022 06:23:22 GMT
Accept-Ranges: bytes
ETag: "669f19a682cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 2886
www.tlg-api.com/api/v1/notification/push/setting/subsite/44
200 OK 9.4 kB URL HTTP/2 www.tlg-api.com/api/v1/notification/push/setting/subsite/44
IP
Hash 91e5b68d874f5086c9598c2740eab8e6
fce79a74b22f546e65b7d1f32a0ce8504c78d32d
d9cd7a1585a711a026c9a900535901a7169d9040ede0c3d71c351b630ce6e5e0
GET /api/v1/notification/push/setting/subsite/44 HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:18 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=KB+AFyhIehKKp6CWep0IChJNMWMAAAAAImG7R7xQUBZ/jMe7iKEimQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901765 NNYN CT(24 26 0) RT(1664175378268 16) q(0 0 1 7) r(1 1) U2
X-Firefox-Spdy: h2
www.golotter.com/Images/Header/user-icon-svg.svg?v=20220920
200 OK 1.6 kB URL HTTP/1.1 www.golotter.com/Images/Header/user-icon-svg.svg?v=20220920
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1295), with CRLF line terminators
Hash abc7bf236f50d8ffec26a209d41931f7
3bf23bfecef4782207433c23282814b7380567d3
2fdf8d84cd99c6955e5055daee048890392ca1650be346f65fbd09ac636cd7d4
GET /Images/Header/user-icon-svg.svg?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "eb574ca982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 1621
www.golotter.com/Images/JoinTheFunElement/Desktop/safe-illustration@2x.png?v=20220920
200 OK 3.6 kB URL HTTP/1.1 www.golotter.com/Images/JoinTheFunElement/Desktop/safe-illustration@2x.png?v=20220920
IP
File type PNG image data, 202 x 158, 8-bit colormap, non-interlaced\012- data
Hash d5eb8b1e6de25ddcfd8faa5d1ec9415b
a081622b515abe04b0625f8c9a5828a57a80d80b
0c4e2fbb39a529b4bf2977cd211f887cac212ddf247d31b3781c65740ee6b218
GET /Images/JoinTheFunElement/Desktop/safe-illustration@2x.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "53ba4ea982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 3626
www.golotter.com/Images/JoinTheFunElement/Desktop/official-ticket-illustration@2x.png?v=20220920
200 OK 3.1 kB URL HTTP/1.1 www.golotter.com/Images/JoinTheFunElement/Desktop/official-ticket-illustration@2x.png?v=20220920
IP
File type PNG image data, 202 x 158, 8-bit colormap, non-interlaced\012- data
Hash 58a3753c81fbe8f51686faee839d2fbd
11652bcb2c709c1d95e69e6cf89ce5d6b7d8a1e8
9609fb6c78287f097b1ad0be77012dbcd4090013bab51d4b9c080cd7126a7c59
GET /Images/JoinTheFunElement/Desktop/official-ticket-illustration@2x.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "53ba4ea982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 3122
www.golotter.com/Images/JoinTheFunElement/Desktop/nocommission-illustration@2x.png?v=20220920
200 OK 4.8 kB URL HTTP/1.1 www.golotter.com/Images/JoinTheFunElement/Desktop/nocommission-illustration@2x.png?v=20220920
IP
File type PNG image data, 202 x 158, 8-bit colormap, non-interlaced\012- data
Hash e6a9e2cb63566be1403e0192a3abdbeb
c4866e631ae718aaa2e3e50dc1a6836855edc2ff
0dfb7f4fd4fd4e3fc5c92407f58009ccb316b2697dacd73368ad9548899b86fb
GET /Images/JoinTheFunElement/Desktop/nocommission-illustration@2x.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=clientapps%5ccss%5cthemes%5cbluewithwhite%5cplay.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "53ba4ea982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 4832
www.golotter.com/Images/Header/globe-icon-svg.svg?v=20220920
200 OK 3.8 kB URL HTTP/1.1 www.golotter.com/Images/Header/globe-icon-svg.svg?v=20220920
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2939), with CRLF line terminators
Hash 692108f019a741c5a27d3c25dfb4312e
25cbc66fd3415493e43bf313277ae1135407a7c9
7ea02a406fb6f0b53bfaa7d81f732345b8b8b074d8ed25c70b62662d47f402eb
GET /Images/Header/globe-icon-svg.svg?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "eb574ca982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 3843
www.golotter.com/objects/dm.tlo?id=29430&v=202209211
200 OK 54 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29430&v=202209211
IP
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a0cc37e36614a09c21b7b05a80e9b28
eb8df560443b8be1164536cbefb2c5fcf5f928b5
cf7ff82c90200595b888a505f501d852c1df9ad602397d2dd0998472ef1fb3ff
GET /objects/dm.tlo?id=29430&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:19 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:19 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=20220920
200 OK 6.7 kB URL HTTP/1.1 www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=20220920
IP
File type PNG image data, 900 x 465, 8-bit colormap, non-interlaced\012- data
Hash 94798089295b8da9a3ca1de198b7621f
21b748b3b5f64b1bf7ce10a031d74aaf45c971c6
f842c41daa27bc48e6becbdd0aad66929a64db6d82df45326223713161609d0d
GET /ClientApps/css/themes/BlueWithWhite/Images/confettiRegular@3x.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Accept-Ranges: bytes
ETag: "4b2fd0a682cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 6667
www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/elements.png?v=20220920
200 OK 132 kB URL HTTP/1.1 www.golotter.com/ClientApps/css/themes/BlueWithWhite/Images/elements.png?v=20220920
IP
File type PNG image data, 795 x 309, 8-bit/color RGBA, non-interlaced\012- data
Size 132 kB (131996 bytes)
Hash b6cc31fe1fafbe2ab1774a96a7d7cebd
ee9a45932de3d0eb04d79df5f6b760fb5b68cf71
34885998e5a25fca5c9f15b3818c85671bb6e6fb859da823264b59fcd4906e89
GET /ClientApps/css/themes/BlueWithWhite/Images/elements.png?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Sep 2022 06:23:23 GMT
Accept-Ranges: bytes
ETag: "3ddd1a682cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 131996
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt
200 OK 842 B URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt
IP
File type ASCII text, with very long lines (2622), with no line terminators
Hash 1b26af8186993a8c44155648b97429f8
dc72918350df414ff0c5a24c91a355c0d69a0052
c534f957238ee539cbac4fd25fdff09d48894a6da58e3f9b378eda933a7e7ebf
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/settings.txt HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 4Qb1XDHHpURMcvTc7z7rZ7G1slzSoh6IoBwMyppY0qAcwr+fkUOt52/lb31SPhgm9KAZRlzX6Wg=
x-amz-request-id: FMCM3RNESJ5VAQ9H
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:41 GMT
etag: "1ffed9739725f7a20601d658fa728fbf"
x-amz-server-side-encryption: AES256
x-amz-version-id: M30KA0c9UD1akvvgHltucvG7YcAk1YNJ
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 842
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3
200 OK 101 kB URL HTTP/2 lptag.liveperson.net/lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 101 kB (101057 bytes)
Hash 4836e2c05e7e52018702092ec8862058
9efa5cb81d8529eca3a34e4b1242e1dce5e0a624
58cfd3b61e3ea4000a9e256cae2be3cecd6a408631e8f1ddd77c2cdd61c1ab9d
GET /lptag/api/account/50625536/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=en-GB&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:19 GMT
content-type: application/x-javascript
set-cookie: ADRUM_BTa=R:25|g:fe71ee44-c611-473d-b88b-fb105b5b668c; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/
ADRUM_BTa=R:25|g:fe71ee44-c611-473d-b88b-fb105b5b668c|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:1758155; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/
ADRUM_BT1=R:25|i:1758155|e:1; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/
ADRUM_BT1=R:25|i:1758155|e:1|d:0; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:49 GMT; Path=/
cache-control: public, max-age=630
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: MISS
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.walkme.com/player/resources/wmjQuery33121.js
200 OK 30 kB URL HTTP/2 cdn.walkme.com/player/resources/wmjQuery33121.js
IP
File type ASCII text, with very long lines (65446)
Hash b00eee8317d72ce865b995c31f1f95ff
da653f6c7081b4d11972d75b40843293960cdd2a
f2d6e90ff34241b2cdcd9d0ff51191a2bc99666dc6e3000de8de460e9057ed05
GET /player/resources/wmjQuery33121.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: bIJXQqxz4tIe4glG7WcDkbMk4JNdbMzwKt7HIuawNDlddo6HA7jK6PrQirQxVZ07I7Q55IbRsJI=
x-amz-request-id: QGHYXH67B291MD4Q
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 May 2022 06:44:33 GMT
etag: "b00eee8317d72ce865b995c31f1f95ff"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: dpj4bAlfG6UlhFPdf_TGly9sgsSAJ5Ge
accept-ranges: bytes
content-type: application/javascript
content-length: 30035
vary: Accept-Encoding
cache-control: max-age=20586043
date: Mon, 26 Sep 2022 06:56:19 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates
200 OK 171 B URL HTTP/2 www.tlg-api.com/api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash cc9aa3b801720e5a469766d462afb20c
6ccd9bd8e6aa4955cc6205896dafec76d7845c7a
ab5d9033688a9d5e0723c4fc301dc2b7a9bbdf785932877d676b3913e87c7d8e
GET /api/v1/configuration/services/TheLotter.Regulation.Location.Service/keys/ClientCacheLocationByIP,ClientCacheLocationByCoordinates HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "a9cbdbed"
content-type: application/json; charset=utf-8
content-length: 171
content-encoding: gzip
access-control-allow-origin: *
cache-control: max-age=56, public
expires: Mon, 26 Sep 2022 06:57:14 GMT
date: Mon, 26 Sep 2022 06:56:18 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=/RijMww9LiOKp6CWep0IChJNMWMAAAAAfXSoYH0VMe9caKUF8Pw2DQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901154 2CNN RT(1664175378268 658) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
www.golotter.com/__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44
200 OK 14 kB URL HTTP/1.1 www.golotter.com/__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13672), with no line terminators
Hash bd61e3535fa4c44a98f0bdd01759f7cd
380e3c9120f63c8a18563230cd16a020d96c5ad3
5305a41e445cc2689fe308984678a96091322094671619ad33a123b39c4f2bc9
POST /__ajax/__authentication.asmx/getauthenticationmodelsignin?siteref=44 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 2
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server:
X-Robots-Tag: noindex, nofollow
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:18 GMT
Content-Length: 13701
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js
200 OK 82 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (31823)
Hash fe4000db350f50d6a0e1636daf9ad890
ef261f9a4442c71ad8803d023d473408a561b79a
496880617acfa9a14dca767aa252fbf9a923291355889b64a210397b280bbad5
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/scripts/prelib-plugin-c93f05bf-5111-3b42-9cee-fff72d190dbd.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: gkOswpCu4MO9WEGm6244WeKlNZVrDm9+BntPDylEwQlyox5AwRXFEBzi26asG2ll6GCnrIcMH1Y=
x-amz-request-id: 8AZVWEB6S3A90T0K
x-amz-replication-status: COMPLETED
last-modified: Thu, 09 Jun 2022 08:23:38 GMT
etag: "fe4000db350f50d6a0e1636daf9ad890"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: JluAApG0RMnoXVfQh02NytSuJkxyJrj1
accept-ranges: bytes
content-type: application/x-javascript
content-length: 82472
vary: Accept-Encoding
cache-control: max-age=22382026
date: Mon, 26 Sep 2022 06:56:19 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=379532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a195cec3bb4fd-OSL
www.tlg-api.com/api/v1/content/header
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/header
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/header HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=YM8tPM2mxzmKp6CWep0IChNNMWMAAAAAHwKQrHMizNKhZNNFjGMJaw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901781 PNNN RT(1664175378268 672) q(0 1 1 0) r(1 1) U6
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js
200 OK 464 kB URL HTTP/2 cdn.walkme.com/player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js
IP
File type JSON data\012- , ASCII text, with very long lines (65300)
Size 464 kB (464167 bytes)
Hash 0625f99b68e784a4cd89c1e87963cf97
0acabe7019dcf9cdddcca2900611c3346ff40a2c
0bd077b714d2140e9a171a2eace2e3a9531c4c833d3460e5dcef66a7c3fbf0bd
GET /player/lib/walkme_lib_20220911-083920-f3c74cea-ae38d8e5.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: EsRSIIJSE0UPL1NUc4Ndca8KEc4iH/y1r0WbaZQTX+1ux7v9pncwh3zTu5sO4xVEWSTRR9M1Q6NUjeHGI4+iLg==
x-amz-request-id: RQ2PNYYTMV549SGD
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:27 GMT
etag: "db700cf4b32cac2f6b175a7e2473c752"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: ql1ZOxucUapuoxXrnf7PKihrwXRtYLyE
accept-ranges: bytes
content-type: application/javascript
content-length: 464071
vary: Accept-Encoding
cache-control: max-age=30291308
date: Mon, 26 Sep 2022 06:56:20 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-sections/multiple
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=Epa3DlHXzSmKp6CWep0IChNNMWMAAAAAHJSp1UJieMfah6m8poBGyg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901781 PNNN RT(1664175378268 678) q(0 1 1 0) r(1 1) U6
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=379532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a195d2b4bb509-OSL
www.tlg-api.com/api/v1/content/string-sections/multiple
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=MU1KUhxhphyKp6CWep0IChNNMWMAAAAA6na/jcotN2Bd6cNuk+Qp2g==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901765 PNNN RT(1664175378268 678) q(0 1 1 1) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=L72EbJKSomGKp6CWep0IChNNMWMAAAAA0KBiM7mBCKWXAT7koae8TQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901789 PNNN RT(1664175378268 697) q(0 1 1 1) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=wd7eNru6bieKp6CWep0IChNNMWMAAAAAiU2jqeH8FZA6Oql9WK9F9g==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901781 PNNN RT(1664175378268 703) q(0 1 1 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-sections/multiple
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-allow-headers: content-type
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
content-length: 0
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=MyDfQC+drUqKp6CWep0IChNNMWMAAAAAhTId4w3AUJkZVi6akN1uhw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 9-5901760-5901802 NNNN CT(24 25 0) RT(1664175378268 674) q(0 1 1 0) r(1 1) U6
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=379532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a195ceb4b0afa-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=379532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a195d29b30b69-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 1fdfa7b74e8bd12f9c45de5b20bbbaec
4ca6e061727e2472c4a000caedb66d26ee82086c
c48054042e5981bec80404a38db0055a301518d9f54891c84655f9f6c3ca37d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:31:54 GMT
Expires: Fri, 30 Sep 2022 16:31:53 GMT
Etag: "4ca6e061727e2472c4a000caedb66d26ee82086c"
Cache-Control: max-age=379532,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a195d2af0b50c-OSL
lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/lpChatV3.min.js?version=10.21.0.1-release_5545
200 OK 31 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/lpChatV3.min.js?version=10.21.0.1-release_5545
IP
Hash 9ec53eb58c499d8f7bf5ccb402257caf
df3c1e8f308bb14155d927c6b94aea3f121be7f0
9457fa69c7bfcf95b33439427c168494a33f31c0dbd3874947aa627eae067c31
GET /le_unified_window/10.21.0.1-release_5545/lpChatV3.min.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1606
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.golotter.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 26 Sep 2022 06:56:19 GMT
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB
200 OK 1.8 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB
IP
Hash 4058e60358cd5c2eb9d6b1c7f2dc31a2
e36d3773e2983c73bdcc19200782d4612e0b57ac
00826c9d8b82ecba7bf70bdd593112771a9918625f3e8a77217e295205774432
GET /api/account/50625536/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:47c50400-59ea-41d6-bdb9-55aaba18cee6; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
ADRUM_BTa=R:25|g:47c50400-59ea-41d6-bdb9-55aaba18cee6|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:5; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
vary: Accept
expires: Mon, 26 Sep 2022 06:57:20 GMT
x-envoy-upstream-service-time: 3
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545
200 OK 14 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545
IP
Hash de8e083ab8c2b0d721bd8abc19992f25
a38488e8173ff6fc3b28971e5f8f1b47795b1292
5b21818d9bd68271a684231e5b1d058a4a4bffe5b6db80b2253278ebd71502e1
GET /le_unified_window/10.21.0.1-release_5545/ui-framework.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545
200 OK 30 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545
IP
Hash b8f5a79e7b0ed73f26818c8a281295c9
c97b2c8cdc9aee8a995e067f2ecd7ca2792e3812
0f8b3458df53071bf94bcfa6576cb7d3556fcff04ee4c3edac14776270e65f60
GET /le_unified_window/10.21.0.1-release_5545/UMSClientAPI.min.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=27171&v=202209211
200 OK 4.4 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=27171&v=202209211
IP
File type PNG image data, 170 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash dee75c78682bac04d6d244f1c431d2cb
b320d2e393367b426b4d0c4f8d8911117b7e4de1
66ed3d6d6303eefb365cceb58dd88a1835672f0e763f5020e88d7ba95ce5b519
GET /objects/dm.tlo?id=27171&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=6428&v=202209211
200 OK 2.5 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=6428&v=202209211
IP
File type PNG image data, 200 x 195, 4-bit colormap, non-interlaced\012- data
Hash b06514d95d8b863b35860a9b9b998228
404223d4660630492d00c3092e9428497fe0cb4a
2557085d58a0762dc154add77aff7a0fca99ef2352c9fab1084b0be29feab5a3
GET /objects/dm.tlo?id=6428&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=28754&v=202209211
200 OK 468 B URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28754&v=202209211
IP
File type PNG image data, 28 x 28, 8-bit colormap, non-interlaced\012- data
Hash 830027c0446f55df1609100ae177f988
47d95d5f3613c7f4b7815a5b6fb3e3ad65bbab38
5d4e8276152a471aab9dc3bd0d39b608df824ae776c4eea5abe5d5fad3dfe2f9
GET /objects/dm.tlo?id=28754&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=29223&v=202209211
200 OK 15 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29223&v=202209211
IP
File type PNG image data, 318 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash a8cde9027a81320175d87e68bfa99357
17530585b3bb1c7176356399455dd4432705bdc8
d89a065d345ce9b060d5ade36b1427d8566d7ecedf63a04c56354298fa46caf6
GET /objects/dm.tlo?id=29223&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=28772&v=202209211
200 OK 13 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28772&v=202209211
IP
File type PNG image data, 288 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash a515e1fb217f9ffe297c88b347c6c7dd
0a4a014a7c2e605009b0b40e9ab23d6b239fac31
f3ab8fddc9aa0129a6bf2f2a4530a64811cf522a09ca4da2f17f63ef03ac5dc1
GET /objects/dm.tlo?id=28772&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=28744&v=202209211
200 OK 2.0 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28744&v=202209211
IP
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash c6954309f7f1cc3ff81fc1c961cb9092
e8e5463a3eefea236047b080dd003df9139dfd8c
aff3a853ecbce57732d66018c852b5d251c718b09508bd28b88d3d372671be8a
GET /objects/dm.tlo?id=28744&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=28745&v=202209211
200 OK 8.3 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28745&v=202209211
IP
File type PNG image data, 288 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash bb3cc8b6b680899ccc85955191f5b5de
15ff10403d48170e1ea1ca5322915530296799f0
a5364dd7458d1da589f33467dae5f44cc7edb0b51955ef467c9f635729d767bd
GET /objects/dm.tlo?id=28745&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=28743&v=202209211
200 OK 5.1 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=28743&v=202209211
IP
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash e195858ecc914f8b9d4d63bb35c20058
5e35ad61baacdbf2bfeae35fc3f799b414754108
81e35cc46e9c8c8528589da0cae4fa85869bcd73feb31e89167aae8c437c3b3b
GET /objects/dm.tlo?id=28743&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=30072&v=202209211
200 OK 15 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=30072&v=202209211
IP
File type PNG image data, 288 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash 13e1ccbd36b88ce2fb2a721cfbdf6a14
cbe7bcdc5e6084a52872753f4709b6fcfea03c6f
619fa56b4ff5ad38aab55ad93a42c61317d0b167aef331f7c55a8a1be93bf722
GET /objects/dm.tlo?id=30072&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/Images/Header/arrow-down-icon-svg.svg?v=20220920
200 OK 1.6 kB URL HTTP/1.1 www.golotter.com/Images/Header/arrow-down-icon-svg.svg?v=20220920
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (723), with CRLF line terminators
Hash e834e85025bde5b4a1199fdec9bc2ad2
e86b215c57e62c987b995e9c643c3a6960633b55
aca3599e515b1a94020414a78f023ae294b5e32b26c4d6be38d0d4486dc777b9
GET /Images/Header/arrow-down-icon-svg.svg?v=20220920 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/css.axd?d=%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fgeneral.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fcontent.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2felements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fflags.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ffooter.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fframework.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fheader.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fhint.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2ficons.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmydetails.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fmyscreens.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fnotsupportedbrowser.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fplayoptions.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2frightbarelements.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fui.jqtheme.css%2c%7e%2fclientapps%2fcss%2fthemes%2fbluewithwhite%2fcommon%2fvalidation.css&v=20220921070020
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 21 Sep 2022 06:23:27 GMT
Accept-Ranges: bytes
ETag: "eb574ca982cdd81:0"
Server:
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
Content-Length: 1571
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js
200 OK 1.7 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3847), with no line terminators
Hash 27094f25677c5d52ee31c4bf6f1800e8
3eb6683727cfc70cc0e8f216f580c98f45e3302c
3607f38571343e61d620be215f2ff07f92dda9b3655ce53fcd2c8bc3c9fdbe46
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/walkme_config_16b6ab612e59460cab2ed91800466ee1.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: UkMrZbf7fJCeVdrajPHZbnRZUjIW9S4xU3R4V6qaUwVNm+bYv3tlFvlW+nIG8gwogIXC8tfrj5s=
x-amz-request-id: 4RPW1SNGHXZKBQGV
x-amz-replication-status: COMPLETED
last-modified: Wed, 13 Jul 2022 06:11:33 GMT
etag: "d7c0919ecb6ec3ef1d545377b33dcfe6"
x-amz-server-side-encryption: AES256
x-amz-version-id: qpysQDI97KnR.kcXuICfW6cFOY67e3SV
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=25053376
date: Mon, 26 Sep 2022 06:56:20 GMT
content-length: 1682
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
www.golotter.com/objects/dm.tlo?id=29241&v=202209211
200 OK 7.5 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29241&v=202209211
IP
File type PNG image data, 274 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 228bec1ca2626d5c510b90a4b5868afe
c6e43d1b3e3e502a8172f17a678b9375af514fcb
1008b7fbe2b7a3cfb4f1366ef343634842e67465fbfa400ebba3f04285cc72f8
GET /objects/dm.tlo?id=29241&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true; _clsk=14ow3eo|1664175379025|1|1|b.clarity.ms/collect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
www.golotter.com/objects/dm.tlo?id=29242&v=202209211
200 OK 7.9 kB URL HTTP/1.1 www.golotter.com/objects/dm.tlo?id=29242&v=202209211
IP
File type PNG image data, 240 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c17b510942a015e5964589847f1975e
b5b76ca1735522fe60cdf5b358950bf8c2afc871
1b918d3fd9de13b8d661f48902e45648d798ba03340a06161034eff86cb17fb5
GET /objects/dm.tlo?id=29242&v=202209211 HTTP/1.1
Host: www.golotter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/lottery-tickets/usa-megamillions/?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
Cookie: lng=1; number_of_redirects=0; urls_tracker=https://www.golotter.com/play.aspx?lotteryid=60&itemid=1&IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925; ViewMobileV2={"DeviceName":"Firefox - Emulator","DeviceType":"Desktop","IsDesktop":true,"IsMobile":false,"IsRobot":false,"IsSmartphone":false,"IsTablet":false}; ASP.NET_SessionId=gp1ztykacrd1xpabhsu0yh5a; Referral-Cookie=%7b%22LandingUrl%22%3a%22https%3a%2f%2fwww.golotter.com%3a443%2fplay.aspx%3flotteryid%3d60%26itemid%3d1%26IQid%3dtheLotter%26tl_affid%3d11395%26ft%3d5%26clickid%3d4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925%22%2c%22ReferralUrl%22%3a%22https%3a%2f%2flnk.to%2f%22%7d; PlayRequestLandingPage=1; _gcl_au=1.1.17774948.1664175375; _ga_PG6WJ6GTXC=GS1.1.1664175375.1.0.1664175375.0.0.0; _ga=GA1.2.1862480516.1664175376; _hjSessionUser_1556149=eyJpZCI6ImNhOThmYjFmLTdjMzgtNTAzZi1iZGVkLTg3YjFiMzNkOGRjMiIsImNyZWF0ZWQiOjE2NjQxNzUzNzU4MzcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_1556149=eyJpZCI6ImM1ZmIzYjc3LTQ4ZWQtNDMzMy04YWM1LTUyNGRkNjRjZTlkNCIsImNyZWF0ZWQiOjE2NjQxNzUzNzU5NjYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _gid=GA1.2.1247255687.1664175377; _gat=1; PAPVisitorId=064bd10af982d4cb80171ba8e7pBpdGt; _uetsid=5122cff03d6811ed8893cf788d3c2b0f; _uetvid=5122d8e03d6811ed87b9772435b3a691; outbrain_cid_fetch=true; _clck=5dhvfi|1|f57|0; _fbp=fb.1.1664175377318.1054101310; ShowUpliftingPromotionPopup=true; _clsk=14ow3eo|1664175379025|1|1|b.clarity.ms/collect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000
Transfer-Encoding: chunked
Content-Type: image/png
Expires: Tue, 26 Sep 2023 06:56:20 GMT
Last-Modified: Mon, 26 Sep 2022 06:56:20 GMT
Server:
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Server-Name: simba5
Strict-Transport-Security: max-age=16070400
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Date: Mon, 26 Sep 2022 06:56:19 GMT
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js
200 OK 3.2 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js
IP
File type ASCII text, with very long lines (9122), with no line terminators
Hash 274fec4705c83d98a443e0e8976210b8
f0fd5ca2f469ba0d63fe6a81a590ccd8bd37f08c
110295647fb96ff5386f6f7653078f0ec833d89c992607e70259a174a8dc0044
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/8.5c169afc.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QSzeQYWyBobHkgf6zNb0r53Y4XTj17ftLs28+zlQx1bhClSIR2MV4kPg8mGpRkGBXfudgUlgdMQ=
x-amz-request-id: DHF4VHKTBFARV6W3
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "274fec4705c83d98a443e0e8976210b8"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: kyc2r_2y3UQWBGfKaKfMai.Eg027fSJo
accept-ranges: bytes
content-type: application/javascript
content-length: 3219
vary: Accept-Encoding
cache-control: max-age=30343975
date: Mon, 26 Sep 2022 06:56:20 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css
200 OK 6.1 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 4660e891089a7dfb65bd3168c4c517ce
08be83e70987546d83a9a26f7ccea9bef238e887
2f5e79fb3ab76fb8f8241b5fb8497eebda0bf0eaf95f66e5deeed3493c58988e
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/custom_css_ee79fcb2717f479a8ae046dd42b7464f.css HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: fmUr8HZQXELNqpB3bgrzf0URmjXFtYBLjUt6Vyuj7ECjOvUlMKYjLOf0wmPVO8bIUalSZ5qtRKY=
x-amz-request-id: 18HAQH184ASQ4TXF
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:39 GMT
etag: "4660e891089a7dfb65bd3168c4c517ce"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: .MrhBql4BfJlOwarCk2.lCDiYBGR4ZKi
accept-ranges: bytes
content-type: text/css
content-length: 6062
vary: Accept-Encoding
cache-control: max-age=30516239
date: Mon, 26 Sep 2022 06:56:21 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json
200 OK 120 kB URL HTTP/2 cdn.walkme.com/users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 120 kB (119872 bytes)
Hash 81f290db518639dc3a88f5dc1d5139bb
d3295c41a8ba40cece917cce52691371900c1c9e
24c6c1f0cb5b4a0387fcefab4d579b32a0fa28a051cfa8c95875fcbcbb4225db
GET /users/ca43a4c1d28e4fb09cf953b9348f73d5/data_ee79fcb2717f479a8ae046dd42b7464f_en-GB.json HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.golotter.com/
Origin: https://www.golotter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ODvgB6I6A3R/FHXsJGlwiRIEJm7keHleirmtl9CcciZXvOaYYlHIJlhTf3THshpKLhee4q7d20Y=
x-amz-request-id: 0GNPRZV87GJTVK6F
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 06:09:39 GMT
etag: "81f290db518639dc3a88f5dc1d5139bb"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: g5svK8rmZYuHCmkOb9C4PThw85soGOjb
accept-ranges: bytes
content-type: application/json
content-length: 119872
vary: Accept-Encoding
cache-control: max-age=30460105
date: Mon, 26 Sep 2022 06:56:21 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js
200 OK 24 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 56e649e0386d6bb1051e65a303f47002
978599cedce7fa1d918c4e9f119e813a3cbc1c60
3f8299a7df89e27c33c88cee1a185da87549392fc35e762e0f30846091acd307
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/27.6072b6f8.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: AscWax0VbqugbnmrVfAoGCJ7gnkUK/vuyjtYIL2Y5R+cBSTd+PqN45xGXCqzbrKp51AWwIe3Qcw=
x-amz-request-id: QFGM7K8D54NBWR3P
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "56e649e0386d6bb1051e65a303f47002"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: n_lB4NIjf_ZD7I4VoDynL3ALGen1BcBB
accept-ranges: bytes
content-type: application/javascript
content-length: 23672
vary: Accept-Encoding
cache-control: max-age=30291391
date: Mon, 26 Sep 2022 06:56:21 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js
200 OK 8.7 kB URL HTTP/2 cdn.walkme.com/player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js
IP
File type ASCII text, with very long lines (24581), with no line terminators
Hash 732d00bcecb7f192eeccf30bcd871ea6
9df21a16a1f63c4f12fe45eb431f2c0da139f898
101027eb4bb4850ff2f948a3c450252e8c30c90dcd8c3ab47703c9b4175e2562
GET /player/lib/20220911-083920-f3c74cea-ae38d8e5/23.9f008391.walkme_lib.js HTTP/1.1
Host: cdn.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 23Uj0iX3Ahtfx5nyF53SJ+iUUPF9a6xBWtDlEzoN0RODq7aOMIMMY5RLhRbd0LYYNs5Eac0qoKk=
x-amz-request-id: QFGG4ZSA9WKMGG1N
x-amz-replication-status: COMPLETED
last-modified: Sun, 11 Sep 2022 08:57:18 GMT
etag: "732d00bcecb7f192eeccf30bcd871ea6"
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: pJsBJn9o14NHih4ioAqNibG7np2.ArDR
accept-ranges: bytes
content-type: application/javascript
content-length: 8723
vary: Accept-Encoding
cache-control: max-age=30291313
date: Mon, 26 Sep 2022 06:56:21 GMT
timing-allow-origin: *
access-control-allow-origin: *
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubdomains
X-Firefox-Spdy: h2
trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=4073&scd=20&ssd=1&est=1664175375707&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664175379781&vi=1664175375705&ri=e6453a37a55bac65f6b5f937dff4c2d6&ref=https%3A%2F%2Flnk.to%2F&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ler=other
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1298910/log/3/unip?en=pre_d_eng_tb&tos=4073&scd=20&ssd=1&est=1664175375707&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664175379781&vi=1664175375705&ri=e6453a37a55bac65f6b5f937dff4c2d6&ref=https%3A%2F%2Flnk.to%2F&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ler=other
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1298910/log/3/unip?en=pre_d_eng_tb&tos=4073&scd=20&ssd=1&est=1664175375707&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664175379781&vi=1664175375705&ri=e6453a37a55bac65f6b5f937dff4c2d6&ref=https%3A%2F%2Flnk.to%2F&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&ler=other HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 26 Sep 2022 06:56:21 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.golotter.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
papi.walkme.com/conditions/evaluatedConditions?accountGuid=ca43a4c1d28e4fb09cf953b9348f73d5&endUserId=gp1ztykacrd1xpabhsu0yh5a&environment=0
200 OK 2 B URL HTTP/2 papi.walkme.com/conditions/evaluatedConditions?accountGuid=ca43a4c1d28e4fb09cf953b9348f73d5&endUserId=gp1ztykacrd1xpabhsu0yh5a&environment=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /conditions/evaluatedConditions?accountGuid=ca43a4c1d28e4fb09cf953b9348f73d5&endUserId=gp1ztykacrd1xpabhsu0yh5a&environment=0 HTTP/1.1
Host: papi.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 2
x-powered-by: Express
x-correlation-id: 79672a87-5298-4824-82b5-c97efad320d9
x-datadog-trace-id: 2696981117089851604
access-control-allow-origin: *
etag: W/"2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
date: Mon, 26 Sep 2022 06:56:21 GMT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile)
200 OK 278 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile)
IP
File type JSON data\012- , ASCII text, with very long lines (626), with no line terminators
Hash 1eafcc036cea5e63fdafb811a8d2aee3
f82562bdedef64421116208b4590cc54815e0d31
7d7de0436c7fb0e55435dbca28b930c40f7284a64385303676f81dbce81af2ab
GET /api/v1/content/string-section?applicationRef=4&subSiteRef=44&languageRef=1§ionName=Footer%20(Mobile) HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:20 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=9xkyZmidbWCKp6CWep0IChRNMWMAAAAAHOIOV85Dd8eCf4ym8K61fw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901143 2NYN RT(1664175378268 1719) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5601745742e988056e27bdbcd657aa07
0991b512ea3a29ed52eb6b11a99c46c3468afa68
456147b2871aa17386f7db2d39b99eb101a24b8b7db23a9d18c02f26b9e52237
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 20:31:40 GMT
Expires: Sun, 02 Oct 2022 20:31:39 GMT
Etag: "0991b512ea3a29ed52eb6b11a99c46c3468afa68"
Cache-Control: max-age=566716,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a19698cf9b4fd-OSL
ec-playback.walkme.com/session/init
200 OK 55 B URL HTTP/2 ec-playback.walkme.com/session/init
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash b89085d55a593f95a11efbd4490d6e76
312129d66fdbef9d2ae3ab3cbf3f6ae8198d18c7
f291886271aaa3bc01bf0f6f3e402c448a9c9714d2577d72ffac7eacf2f3f157
POST /session/init HTTP/1.1
Host: ec-playback.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 94
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json; charset=utf-8
content-length: 55
etag: W/"37-MSEp1m/b750q46s8vz9q6BmNGMc"
date: Mon, 26 Sep 2022 06:56:22 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5601745742e988056e27bdbcd657aa07
0991b512ea3a29ed52eb6b11a99c46c3468afa68
456147b2871aa17386f7db2d39b99eb101a24b8b7db23a9d18c02f26b9e52237
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 06:56:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 20:31:40 GMT
Expires: Sun, 02 Oct 2022 20:31:39 GMT
Etag: "0991b512ea3a29ed52eb6b11a99c46c3468afa68"
Cache-Control: max-age=566716,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750a196b0df6b509-OSL
www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
200 OK 567 B URL HTTP/2 www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
IP
Hash 6e0935c618ce14fa864396eacde969bc
5a9b0946082724db012ef27f9d20cb96dba0f8a7
346422c25ec482456a0d8beb8b875fcda11d524bb7c11a9877f279938853446d
GET /api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:20 GMT
set-cookie: visid_incap_1626863=LM6adBDXS3in8stTYRc+YBRNMWMAAAAAQUIPAAAAAAA1usSgAVyYntOIpXQk5ZCt; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=c0NMX53ToUPWp6CWep0IChRNMWMAAAAAFmNnEj8Msj5AVXzCBO1JYQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5898537 2NYN RT(1664175378268 1773) q(0 0 0 -1) r(0 0)
X-Firefox-Spdy: h2
ec.walkme.com/event/postEvent
200 OK 2 B URL HTTP/2 ec.walkme.com/event/postEvent
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /event/postEvent HTTP/1.1
Host: ec.walkme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1879
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin
cache-control: private, max-age=600
content-security-policy: upgrade-insecure-requests; block-all-mixed-content; default-src 'none'; frame-ancestors: 'none'
access-control-allow-origin: *
content-type: text/html; charset=utf-8
content-length: 2
date: Mon, 26 Sep 2022 06:56:22 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/
IP
GET /api/v1/feature-toggle/is-feature-enabled/featureName/Regulation-AustraliaExistingUserLogin/subfeature/ HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=Rl84K9GA1gSKp6CWep0IChNNMWMAAAAAVC1CpnipaVh/dZBHhtehvA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901789 NNYN CT(25 25 0) RT(1664175378268 665) q(0 0 0 0) r(1 1) U2
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Location%20Notification HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=w++DB1EVyWiKp6CWep0IChNNMWMAAAAABRC4Dz2af61bgUw66TAtjg==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901268 2NYN RT(1664175378268 665) q(0 0 0 1) r(1 1)
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545
IP
GET /le_unified_window/10.21.0.1-release_5545/surveylogicinstance.min.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/users/auth/automatic-logout/configuration
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/users/auth/automatic-logout/configuration
IP
GET /api/v1/users/auth/automatic-logout/configuration HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=hghRfAUNoQ+Kp6CWep0IChNNMWMAAAAApmsZMXm9SLCC7P+PHpMDeA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901781 NNYN CT(22 24 0) RT(1664175378268 651) q(0 0 0 0) r(1 1) U2
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP
GET /api/account/50625536/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:967478a4-2009-4f8f-948a-b01c4c6b0746; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
ADRUM_BTa=R:25|g:967478a4-2009-4f8f-948a-b01c4c6b0746|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:4; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:50 GMT; Path=/
vary: Accept
expires: Mon, 26 Sep 2022 06:57:20 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108
IP
GET /le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:23 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:12:57 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:23 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&force=1&env=prod
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&force=1&env=prod
IP
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:21 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:21 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
200 OK 0 B URL HTTP/2 lnk.to/TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
IP
GET /TLUSMM?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925 HTTP/1.1
Host: lnk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smarturl.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:15 GMT
content-type: text/html; charset=UTF-8
server: nginx
set-cookie: LF_session_f2217dcb022a65cbb4c210b464a192b1=1; expires=Mon, 26-Sep-2022 07:06:15 GMT; Max-Age=600; path=/; domain=lnk.to; secure; HttpOnly
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/25071092
200 OK 0 B URL HTTP/2 www.clarity.ms/tag/uet/25071092
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/uet/25071092 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=54c4c1e186364eb19e6c3a9a55dbfabe.20220926.20230926; expires=Tue, 26 Sep 2023 06:56:18 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0Ek0xYwAAAAB9V5kHps50TKsOht3zxeXmT1NMMjMxMDUwMjA1MDM3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Mon, 26 Sep 2022 06:56:18 GMT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Header HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=E5OZM1OHYxiKp6CWep0IChNNMWMAAAAAPdMbMFfDlfonXZAR4tXuhA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901143 2NYN RT(1664175378268 669) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer%20License%20Description HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=M+tODMW9DgSKp6CWep0IChNNMWMAAAAA95FsjPNspksrgsAT9Sc+qQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901269 2NYN RT(1664175378268 646) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-sections/multiple
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-sections/multiple
IP
POST /api/v1/content/string-sections/multiple HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 106
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=T82Za4veSieKp6CWep0IChNNMWMAAAAAYZ3UUy6NMxVkN18/6RINsQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901802 PNYN RT(1664175378268 843) q(0 0 0 0) r(0 0) U6
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545
IP
GET /le_unified_window/10.21.0.1-release_5545/desktopEmbedded.js?version=10.21.0.1-release_5545 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:20 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 02:04:42 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
tl-log.com/api/v1/logging/configuration
200 OK 0 B URL HTTP/2 tl-log.com/api/v1/logging/configuration
IP
GET /api/v1/logging/configuration HTTP/1.1
Host: tl-log.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=16070400
date: Mon, 26 Sep 2022 06:56:16 GMT
set-cookie: visid_incap_1921636=J9HFzWU2S1KpPzmP7VL19xBNMWMAAAAAQUIPAAAAAACYfQyh3GbL+tGOttjancgB; expires=Mon, 25 Sep 2023 22:38:23 GMT; HttpOnly; path=/; Domain=.tl-log.com; Secure; SameSite=None
incap_ses_765_1921636=+tzqensjnCP4aMuuSNSdChBNMWMAAAAAC0rq0ppVTnrrIDavd2HWWQ==; path=/; Domain=.tl-log.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-53076264-53076268 PNYN RT(1664175376680 70) q(0 0 0 0) r(0 0) U2
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1556149.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1556149.js?sv=6
IP
GET /c/hotjar-1556149.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 26 Sep 2022 06:56:08 GMT
cache-control: max-age=60
etag: W/cacfa538562de3bcdee5bda6377a63ed
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zqWVbDMvaIBeVZG5-ALRdqIVIpnAsh3F8ZF8fnzbBKlBGYjIu-ecoA==
age: 9
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans:wght@400;700&display=swap
IP
GET /css2?family=Noto+Sans:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 06:56:16 GMT
date: Mon, 26 Sep 2022 06:56:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/
IP
GET /api/v1/content/footer/subsite/44/language/1?isMobile=false&url=https://www.golotter.com/ HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=300
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=0u3sbYXLfF6Kp6CWep0IChNNMWMAAAAApkNfQZ8BC/Um19e7PZPrbQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901154 2NYN RT(1664175378268 667) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
IP
GET /api/v1/product-catalog/products/subsite/44?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=nF2NdSBGhR+Kp6CWep0IChNNMWMAAAAAxSPNaW2ttd3Cn6QJujnE/A==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901765 PNYN RT(1664175378268 669) q(0 1 1 1) r(1 1) U2
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Footer HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:20 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=PJDnFfNmTwSKp6CWep0IChRNMWMAAAAANh1CvCsKm6a9Wy7Rl6aLhQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5897651 2NYN RT(1664175378268 1720) q(0 0 0 0) r(1 1)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef=
IP
GET /api/v1/lottery-game-catalog/subsite/44/lotteries/60/is-supported?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:20 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=s0TYf/ow3QuKp6CWep0IChRNMWMAAAAA4P/ddG1dwhXtUgpKf5Rcig==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901143 2NYN RT(1664175378268 1770) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
200 OK 0 B URL HTTP/2 smarturl.it/MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925
IP
GET /MegaMillion_Play?IQid=theLotter&tl_affid=11395&ft=5&clickid=4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925 HTTP/1.1
Host: smarturl.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:14 GMT
content-type: text/html; charset=UTF-8
server: nginx
set-cookie: LF_session_64d74686fed897f793d761036c88ff6a=1; expires=Mon, 26-Sep-2022 07:06:14 GMT; Max-Age=600; path=/; domain=smarturl.it; secure; HttpOnly
x-redirector-version: redirector-v3
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/regulation/age-verification/subsite/44/required
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/regulation/age-verification/subsite/44/required
IP
GET /api/v1/regulation/age-verification/subsite/44/required HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=L0CPQeCB3X2Kp6CWep0IChJNMWMAAAAAZ3rccJHLrbMXRxP7XIsfPA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901143 2NYN RT(1664175378268 653) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP
POST /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 56
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=UCJ3clSzpimKp6CWep0IChNNMWMAAAAAec45beSRazKS2TE4v2heIw==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901810 NNYN CT(23 23 0) RT(1664175378268 829) q(0 0 1 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/mobile-apps-links/subsite/44/language/1
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/mobile-apps-links/subsite/44/language/1
IP
GET /api/v1/content/mobile-apps-links/subsite/44/language/1 HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=Ii7JWDJMs1aKp6CWep0IChNNMWMAAAAAnXuVoBo51iVMqtWtA3+lMA==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901808 PNYN RT(1664175378268 1422) q(0 0 0 0) r(1 1) U2
X-Firefox-Spdy: h2
s.yimg.com/wi/ytc.js
200 OK 0 B IP
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hmp+nsu97OI0QOSN798JGln/+AxP8Y1p6bvifn0LZPdC7oV+S4OnZ/zxCg8XLK2Dk6WCGpaFii4=
x-amz-request-id: AZNDC88YZ8C5BFDX
date: Mon, 26 Sep 2022 06:49:32 GMT
last-modified: Tue, 14 Jun 2022 12:21:31 GMT
x-amz-expiration: expiry-date="Thu, 20 Jul 2023 00:00:00 GMT", rule-id="oath-standard-lifecycle"
etag: "6a624022b5d271dcefb070b0b6670abc-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: .QD3nDfK79S8_ikLSJXTL23Tdis9tg0C
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
age: 406
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Play%20Error
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Play%20Error
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Play%20Error HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:20 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=ziKPIpmSbCSKp6CWep0IChRNMWMAAAAAicI9w6fwe2zqAiCq9iHwsQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5897651 2NYN RT(1664175378268 1769) q(0 0 0 0) r(0 0)
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod
IP
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.golotter.com&site=50625536&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:21 GMT
content-type: text/html
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:21 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/50625536?&cb=lpCb55502x31959&t=sp&ts=1664175378154&pid=9081396764&tid=8459444547&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=2&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/50625536?&cb=lpCb55502x31959&t=sp&ts=1664175378154&pid=9081396764&tid=8459444547&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=2&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP
GET /api/js/50625536?&cb=lpCb55502x31959&t=sp&ts=1664175378154&pid=9081396764&tid=8459444547&pt=Play%20US%20Mega%20Millions%20Online%20for%20Huge%20Jackpots%20%7C%20Golotter&u=https%3A%2F%2Fwww.golotter.com%2Flottery-tickets%2Fusa-megamillions%2F%3FIQid%3DtheLotter%26tl_affid%3D11395%26ft%3D5%26clickid%3D4269d5ed0321ccca26e1fcd3fa6e9798-5142-0925&r=https%3A%2F%2Flnk.to%2F&sec=%5B%22en-GB%22%5D&df=0&os=2&sdes=%5B%7B%22type%22%3A%22ctmrinfo%22%2C%22info%22%3A%7B%22cstatus%22%3A%22N%2FA%22%2C%22ctype%22%3A%22Non%20Registered%22%2C%22customerId%22%3A%22-1%22%2C%22role%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22personal%22%2C%22personal%22%3A%7B%22firstname%22%3A%22N%2FA%22%2C%22lastname%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22cart%22%2C%22products%22%3A%5B%7B%22product%22%3A%7B%22name%22%3A%22U.S.%20-%20Mega%20Millions%22%2C%22category%22%3A%22Current%20Played%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22N%2FA%22%2C%22category%22%3A%22Favorite%20Lottery%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%22Non%20Registered%20%3B%20%22%2C%22category%22%3A%22General%20information%22%7D%7D%2C%7B%22product%22%3A%7B%22name%22%3A%224764%20%3A%20Default%20-%20Global%20-%207th%20for%20Free%20Subscription%22%2C%22category%22%3A%22Best%20Sale%22%7D%7D%5D%7D%2C%7B%22type%22%3A%22error%22%2C%22error%22%3A%7B%22message%22%3A%22N%2FA%22%2C%22code%22%3A%22N%2FA%22%7D%7D%2C%7B%22type%22%3A%22lead%22%2C%22lead%22%3A%7B%22topic%22%3A%22%22%2C%22leadId%22%3A%22%22%7D%7D%5D&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:22 GMT
content-type: application/javascript
set-cookie: LPVisitorID=MzOWNmNzZmYWViMzQ5MWQw; Expires=Tue, 26-Sep-2023 06:56:22 GMT; Path=/; HttpOnly
LPSessionID=YqwZkSHsTOKSWMA7yVQP8A; Path=/api/js/50625536; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/823?v=3.0&cb=lp573474412&flavor=dependency
200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/823?v=3.0&cb=lp573474412&flavor=dependency
IP
GET /api/account/50625536/configuration/le-campaigns/campaigns/571505912/engagements/573474412/revision/823?v=3.0&cb=lp573474412&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:23 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:25|g:5066e01e-0872-434d-af20-2d6cfa88ffbf; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:53 GMT; Path=/
ADRUM_BTa=R:25|g:5066e01e-0872-434d-af20-2d6cfa88ffbf|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:53 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:53 GMT; Path=/; Secure
ADRUM_BT1=R:25|i:2241585; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:53 GMT; Path=/
ADRUM_BT1=R:25|i:2241585|e:5; Max-Age=30; Expires=Mon, 26-Sep-2022 06:56:53 GMT; Path=/
vary: Accept
expires: Mon, 26 Sep 2022 06:57:23 GMT
x-envoy-upstream-service-time: 3
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/product-catalog/products/subsite/44?userRef=
IP
GET /api/v1/product-catalog/products/subsite/44?userRef= HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba1
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=z0+jVANAExGKp6CWep0IChNNMWMAAAAAdmIDwbEOtNCZtH5B4LeUiQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901789 PNYN RT(1664175378268 670) q(0 1 1 0) r(1 1) U2
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/UISuite.js?_v=3.52.0.0-release_5108
200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/UISuite.js?_v=3.52.0.0-release_5108
IP
GET /le_re/3.52.0.0-release_5108/jsv2/UISuite.js?_v=3.52.0.0-release_5108 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 06:56:23 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:12:57 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Sep 2023 06:56:23 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box
IP
GET /api/v1/content/string-section?applicationRef=1&subSiteRef=44&languageRef=1§ionName=Login%20Box HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=qaWPEx52RFCKp6CWep0IChJNMWMAAAAAILnjuDXF0o+lEmK3PQgXGQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901143 2NYN RT(1664175378268 667) q(0 0 0 2) r(0 0)
X-Firefox-Spdy: h2
www.tlg-api.com/api/v1/content/header
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v1/content/header
IP
POST /api/v1/content/header HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 135
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
expires: -1
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba3
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=0gKkLb1n6k+Kp6CWep0IChNNMWMAAAAAW+q5GlgpFclTpa5L/s02IQ==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901765 PNYN RT(1664175378268 780) q(0 0 0 0) r(1 1) U6
X-Firefox-Spdy: h2
www.tlg-api.com/api/v2/content/dictionary-items
200 OK 0 B URL HTTP/2 www.tlg-api.com/api/v2/content/dictionary-items
IP
POST /api/v2/content/dictionary-items HTTP/1.1
Host: www.tlg-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 58
Origin: https://www.golotter.com
Connection: keep-alive
Referer: https://www.golotter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=60
content-type: application/json; charset=utf-8
server: Microsoft-IIS/8.5
access-control-allow-origin: *
access-control-expose-headers: server-name
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
server-name: simba2
strict-transport-security: max-age=15552001; includeSubDomains; preload
date: Mon, 26 Sep 2022 06:56:19 GMT
set-cookie: visid_incap_1626863=28wO27spRJath4+JNvoAZhJNMWMAAAAAQUIPAAAAAABnOuFEV/iRNl/UO6p1BG4+; expires=Tue, 26 Sep 2023 03:24:47 GMT; HttpOnly; path=/; Domain=.tlg-api.com; Secure; SameSite=None
incap_ses_723_1626863=2Y8xUgOJMyKKp6CWep0IChNNMWMAAAAAvmL6eMnXJMoJUBQSThvk9g==; path=/; Domain=.tlg-api.com; Secure; SameSite=None
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 9-5901760-5901808 NNYN CT(25 25 0) RT(1664175378268 826) q(0 0 1 0) r(1 2) U6
X-Firefox-Spdy: h2
20.113.67.50
143.204.55.110
178.249.97.98
151.101.85.44
95.142.30.138
157.240.200.14
23.36.76.226
52.213.147.213
0.0.0.0